Can't access workmail - 403 Forbidden *after* successfully logging in.

Question

I'm encountering a really odd error when trying to use webmail today, regardless of which user in my org I try.  
I log into the app as usual, there's a redirection into https://webmail.mail.eu-west-1.awsapps.com/workmail/?auth_code=&organization=®ion=eu-west-1&wdc_csrf_token= that then fails with a 403 Forbidden, and just gets stuck there. A refresh just takes me back to the login screen. If I try the wrong password on the login screen it successfully tells me I've entered incorrect credentials.  
  
I tried resetting the user's password, several users, different browser, different PC & Mobile (browser), different network, Outlook Exchange setup. Nothing worked. The webmail was in working condition although it hadn't been checked in a few months. There's no special permissions or setup on my org.  
  
What's going on? Any ideas?  
  
Edited by: Nriveros on Jul 6, 2021 9:05 AM

Answer

The problem subsists today - hoping to catch some @AWS staff attention, as I really have no idea what could be the actual problem, since there's no explanation whatsoever on the webapp (or any of the other login patterns, really). The workmail has been in use for the past few years without any problems, and is now blocking an SSL renewal due in a couple of weeks.  
  
Edited by: Nriveros on Jul 9, 2021 1:28 AM

Answer

Hi Nriveros,  
The organization has an access control rule that denies access for IP addresses outside of the specified IP range. https://docs.aws.amazon.com/workmail/latest/adminguide/access-rules.html.  
  
Please reset you access control rules and it should fix the issue.  
  
Thanks,  
Sowmya

Can't access workmail - 403 Forbidden after successfully logging in.

Relevant content